multiple

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2019-03-01 tcpdump < 4.9.3 - Multiple Heap-Based Out-of-Bounds Reads
  • dos
    		•  Google Security Research
    2019-03-01 Google Chrome < M72 - FileWriterImpl Use-After-Free
  • dos
    		•  Google Security Research
    2019-03-01 Google Chrome < M72 - Use-After-Free in RenderProcessHostImpl Binding for P2PSocketDispatcherHost
  • dos
    		•  Google Security Research
    2019-03-01 Google Chrome < M72 - RenderFrameHostImpl::CreateMediaStreamDispatcherHost Use-After-Free
  • dos
    		•  Google Security Research
    2019-03-01 Google Chrome < M72 - PaymentRequest Service Use-After-Free
  • dos
    		•  Google Security Research
    2019-02-22 WebKit JSC – reifyStaticProperty Needs to set the PropertyAttribute::CustomAccessor flag for CustomGetterSetter
  • dos
    		•  Google Security Research
    2019-02-22 Quest NetVault Backup Server < 11.4.5 - Process Manager Service SQL Injection / Remote Code Execution
  • webapps
    		•  Chris Anastasio
    2019-02-18 Comodo Dome Firewall 2.7.0 – Cross-Site Scripting
  • webapps
    		•  Ozer Goker
    2019-02-18 ArangoDB Community Edition 3.4.2-1 – Cross-Site Scripting
  • webapps
    		•  Ozer Goker
    2019-02-18 Apache CouchDB 2.3.0 – Cross-Site Scripting
  • webapps
    		•  Ozer Goker
    2019-02-18 M/Monit 3.7.2 – Privilege Escalation
  • webapps
    		•  Dolev Farhi
    2019-02-11 Indusoft Web Studio 8.1 SP2 – Remote Code Execution
  • remote
    		•  Jacob Baines
    2019-02-06 Skia – Incorrect Convexity Assumptions Leading to Buffer Overflows
  • dos
    		•  Google Security Research
    2019-02-04 pfSense 2.4.4-p1 – Cross-Site Scripting
  • webapps
    		•  Ozer Goker
    2019-02-04 Nessus 8.2.1 – Cross-Site Scripting
  • webapps
    		•  Ozer Goker
    2019-01-31 macOS < 10.14.3 / iOS < 12.1.3 - Kernel Heap Overflow in PF_KEY due to Lack of Bounds Checking when Retrieving Statistics
  • dos
    		•  Google Security Research
    2019-01-31 macOS < 10.14.3 / iOS < 12.1.3 XNU - 'vm_map_copy' Optimization which Requires Atomicity isn't Atomic
  • dos
    		•  Google Security Research
    2019-01-31 macOS < 10.14.3 / iOS < 12.1.3 - Sandbox Escapes due to Type Confusions and Memory Safety Issues in iohideventsystem
  • dos
    		•  Google Security Research
    2019-01-31 macOS < 10.14.3 / iOS < 12.1.3 - Arbitrary mach Port Name Deallocation in XPC Services due to Invalid mach Message Parsing in _xpc_serializer_unpack
  • dos
    		•  Google Security Research
    2019-01-30 iOS/macOS 10.13.6 – ‘if_ports_used_update_wakeuuid()’ 16-byte Uninitialized Kernel Stack Disclosure
  • dos
    		•  Google Security Research
    2019-01-28 LogonBox Limited / Hypersocket Nervepoint Access Manager – (Unauthenticated) Insecure Direct Object Reference
  • webapps
    		•  0v3rride
    2019-01-25 iOS/macOS – ‘task_swap_mach_voucher()’ Use-After-Free
  • dos
    		•  Google Security Research
    2019-01-25 Lua 5.3.5 – ‘debug.upvaluejoin’ Use After Free
  • dos
    		•  Fady Mohammed Osman
    2019-01-18 SCP Client – Multiple Vulnerabilities (SSHtranger Things)
  • remote
    		•  Mark E. Haase